| CVE-2025-37179 | Out-of-Bounds Read Vulnerabilities Leading to Process Crash in AOS-8 Operating System | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 5.3 | 2026-01-13 20:08:59 | Deep Dive |
| CVE-2025-37178 | Out-of-Bounds Read Vulnerabilities Leading to Process Crash in AOS-8 Operating System | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 5.3 | 2026-01-13 20:08:24 | Deep Dive |
| CVE-2025-37177 | Authenticated Arbitrary File Deletion Vulnerability in AOS-10 or AOS-8 Command Line Interface (CLI) | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.5 | 2026-01-13 20:08:07 | Deep Dive |
| CVE-2025-37176 | Authenticated Command Injection Vulnerability in an AOS-8 operating system's internal workflow | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.5 | 2026-01-13 20:07:50 | Deep Dive |
| CVE-2025-37175 | Authenticated Arbitrary File Upload Vulnerability in AOS-10 or AOS-8 Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2026-01-13 20:07:34 | Deep Dive |
| CVE-2025-37174 | Authenticated Arbitrary File Write Vulnerability in AOS 10 and AOS-8 Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2026-01-13 20:05:33 | Deep Dive |
| CVE-2025-37173 | Improper Input Handling Vulnerability in Authenticated Configuration API Endpoint (AOS-10/AOS-8 Web UI) | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2026-01-13 20:04:57 | Deep Dive |
| CVE-2025-37172 | Authenticated Command Injection Vulnerabilities in AOS-8 Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2026-01-13 20:04:38 | Deep Dive |
| CVE-2025-37171 | Authenticated Command Injection Vulnerabilities in AOS-8 Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2026-01-13 20:04:22 | Deep Dive |
| CVE-2025-37170 | Authenticated Command Injection Vulnerabilities in AOS-8 Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2026-01-13 20:04:04 | Deep Dive |
| CVE-2025-37169 | Stack Overflow Vulnerability in AOS-10 Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2026-01-13 20:03:34 | Deep Dive |
| CVE-2025-37168 | Unauthenticated Arbitrary File Deletion Vulnerability in AOS-8 Operating System | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 8.2 | 2026-01-13 20:03:09 | Deep Dive |
| CVE-2025-37145 | Authenticated Arbitrary File Download Vulnerabilities in a Low-Level Interface Library Affecting AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 4.9 | 2025-10-14 17:02:26 | Deep Dive |
| CVE-2025-37144 | Authenticated Arbitrary File Download Vulnerabilities in a Low-Level Interface Library Affecting AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 4.9 | 2025-10-14 17:01:46 | Deep Dive |
| CVE-2025-37143 | Authenticated Arbitrary File Download Vulnerability in CLI Binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor Web Interface (Physical Access Required) | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 4.9 | 2025-10-14 17:00:24 | Deep Dive |
| CVE-2025-37142 | Authenticated Arbitrary File Download Vulnerabilities in CLI Binary of AOS-8 Controller/Mobility Conductor Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 4.9 | 2025-10-14 16:59:43 | Deep Dive |
| CVE-2025-37141 | Authenticated Arbitrary File Download Vulnerabilities in CLI Binary of AOS-8 Controller/Mobility Conductor Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 4.9 | 2025-10-14 16:59:15 | Deep Dive |
| CVE-2025-37140 | Authenticated Arbitrary File Download Vulnerabilities in CLI Binary of AOS-8 Controller/Mobility Conductor Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 4.9 | 2025-10-14 16:58:41 | Deep Dive |
| CVE-2025-37139 | Vulnerability in AOS firmware allows for Authenticated Local malicious actor to Permanently Disable Boot | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.0 | 2025-10-14 16:58:14 | Deep Dive |
| CVE-2025-37138 | Authenticated Command Injection Vulnerability in CLI Binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface (Physical Access Required) | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.2 | 2025-10-14 16:57:51 | Deep Dive |